ROL Solutions Ltd

GovMetric CX

GovMetric CX is the leading citizen experience management (CXM) and customer satisfaction solution for the public sector. Our multi-channel platform captures millions of pieces of feedback every year. Advanced text analytics, AI, data visualisation and dashboards combine to deliver indispensable insight that helps you take evidence-based decisions and actions.

Features

  • Citizen Experience Management (CXM)
  • Customer feedback and customer satisfaction incl. NPS, CES, CSAT, Likert
  • Multi-channel for every touchpoint
  • Text analytics and artificial intelligence incl. NLP, ML, sentiment analytics
  • Real-time data visualisation and reporting
  • Individual and shared dashboards
  • Automated management reporting & benchmarking
  • Customisable, accessible forms & surveys
  • Interoperable, government-grade technology platform
  • Outstanding support from public sector experts

Benefits

  • Creating a citizen-centred mindset within the organisation
  • Targeting service improvements for maximum citizen benefit
  • Improving Right First Time service delivery
  • Reducing formal complaints
  • Delivering corporate CX objectives and measurement against KPIs
  • Informing and evaluating channel migration strategy
  • Internal and external benchmarking and sharing best practice
  • Reducing the cost of citizen engagement
  • Understanding the customer journey and improving the digital platform
  • Implementing an organisational workflow for customer excellence

Pricing

£3,500 to £32,400 an instance a year

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at nic.streatfeild@rol.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 12

Service ID

9 0 5 8 0 3 3 8 1 5 7 2 8 9 8

Contact

ROL Solutions Ltd Nic Streatfeild
Telephone: 07973730005
Email: nic.streatfeild@rol.co.uk

Service scope

Software add-on or extension
No
Cloud deployment model
Public cloud
Service constraints
None. The service is available 24 hours a day, 7 days a week.
System requirements
Latest version of widely adopted browsers

User support

Email or online ticketing support
Email or online ticketing
Support response times
9 to 5 (UK time), Monday to Friday
User can manage status and priority of support tickets
No
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
No
Onsite support
Onsite support
Support levels
Standard support is available from 8:30am to 5:30pm and is included in the annual support fee.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
The onboarding process will be led by one of our experienced project managers, who will work with your nominated project lead. Starting with the project kick-off meeting, our team will work with you to: Identify sources of data and confirm the requirements for any interfaces with other systems; Agree your surveys, services and categories; Agree and execute a project plan. Before the system goes live, we will deliver comprehensive initial training on a ‘train the trainer’ basis.

Timescales for a typical programme range from 6 to 12 weeks from project kick-off to going live with the first survey.

You will also receive ongoing support and mentoring from your Customer Success Manager—a public sector CX expert whose focus is on helping you to get the most out of GovMetric CX. They will assist you with analysing your data and will make recommendations on how to fine-tune your approach. They will share ideas, knowledge and best practice with you through regular reviews and online training, and they will ensure that your programme continues to thrive in the long-term by helping you to take advantage of new opportunities and respond to new requirements.
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
Prior to the end of your contract, all of your data can be downloaded using the standard export features.
End-of-contract process
There are no additional costs associated with offboarding. Once you are outside of the contract period, the service will be switched off and will no longer be available for access.

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install
No
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
Our web-based systems are built following responsive design principles to ensure that pages render in a way that is suitable for the device. While different device types may display the systems differently, the functionally they provide will be equivalent.
Service interface
Yes
Description of service interface
The citizen-facing interface enables citizens to provide comments, feedback and ratings via online surveys and forms, touchscreens, IVR and print-based materials.

The organisation interface enables users to view customer satisfaction and feedback data using data visualisation tools, dashboards and management reports.
Accessibility standards
WCAG 2.1 AA or EN 301 549
Accessibility testing
The relevant citizen interfaces have been tested using a combination of automatic tools and manual expert verification. We work closely with leading accessibility consultants to ensure that all citizens have the same level of access to the system.
API
Yes
What users can and can't do using the API
The API enables the secure submission & extraction of data into the GovMetric CX system.

You can: access to all customer feedback data; access an OData interface for external MI systems; request SMS / email surveys to specified recipients; submit data from 3rd party feeds or capture tools.

You can't: create new reports (these are configured by the service desk); create new surveys.
API documentation
Yes
API documentation formats
  • Open API (also known as Swagger)
  • HTML
  • PDF
API sandbox or test environment
Yes
Customisation available
Yes
Description of customisation
The following features are customisable by users via the GovMetric CX user interface:
Dashboards;
Management reporting;
Alerts;
Key performance indicators.

These features are controlled per user through a rich permissions-based system.

The following features are customisable by the GovMetric service desk:
Corporate branding for surveys;
Reports;
Users & permissions.

Scaling

Independence of resources
All traffic to our systems is load-balanced by multiple servers across multiple geographically disparate data centres within the EEA / UK (defined by agreement at onboarding). Our back-end services make use of serverless technologies which allow us to scale according to demand. System utilisation resources are constantly monitored and adjusted to the needs.

Analytics

Service usage metrics
Yes
Metrics types
Can be requested through the service desk
Reporting types
  • Regular reports
  • Reports on request

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Security Clearance (SC)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations
Yes
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least once a year
Penetration testing approach
‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Encryption of all physical media
Data sanitisation process
Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
All subscriber data can be exported via multiple methods:
API;
OData;
CSV extract.
Data export formats
  • CSV
  • Other
Other data export formats
  • JSON
  • OData schema
Data import formats
  • CSV
  • Other
Other data import formats
  • JSON - through our secure API
  • XML - through our secure API

Data-in-transit protection

Data protection between buyer and supplier networks
TLS (version 1.2 or above)
Data protection within supplier network
TLS (version 1.2 or above)

Availability and resilience

Guaranteed availability
Reasonable endeavours will be made to ensure the GovMetric CX Service Platform is available for access by the Subscribing Client to meet an annual average uptime target of at least 99.9%. Our comprehensive SLA is available on request.
Approach to resilience
All services are replicated over multiple-geographically disbursed locations with all traffic load balanced between. Faulty systems within our platform are automatically removed and replaced to ensure full resilience.
Outage reporting
Service outage reports are communicated by our service desk via email and telephone as appropriate.

Identity and authentication

User authentication needed
Yes
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
Access restrictions in management interfaces and support channels
There are named contacts for all subscribers who can contact and arrange service changes. Access to management interfaces are managed by role-based permissions and restricted to ROL Solutions Ltd employees.
Access restriction testing frequency
At least every 6 months
Management access authentication
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)

Audit information for users

Access to user activity audit information
Users contact the support team to get audit information
How long user audit data is stored for
At least 12 months
Access to supplier activity audit information
Users contact the support team to get audit information
How long supplier audit data is stored for
At least 12 months
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
QMS UK LTD
ISO/IEC 27001 accreditation date
17/10/2016
What the ISO/IEC 27001 doesn’t cover
ISO 27001 applies to all aspects of the company's service provision.
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
The company is accredited under ISO27001. The company's Managing Director directly oversees the ISMS through regular operations meetings with direct reports.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
The Change Control process is designed to capture and manage the various requests for changes, upgrades and development of the Service Platform.

Subscriber requests for changes and updates will be reviewed by the company via an issue management system.

Any agreed changes then go through a process of configuration, testing and security review prior to being deployed to the live environment.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
All GovMetric CX servers are monitored using the Amazon AWS Inspector service, which reviews all servers against potential security issues and vulnerabilities, as set out in 'Common Vulnerabilities and Exposures' and 'Security Best Practices' defined by the AWS Inspector Core Rules Sets. All found issues and vulnerabilities are reviewed on a weekly basis by the senior technical team and dealt with according to the relative risk.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
All external traffic to our platforms is automatically monitored and protected by our cloud provider, Amazon AWS, who comply with various standards relevant to the security of its services including ISAE 3402.

Any traffic getting through to our systems is then protected using elastic load balancers and web application firewalls which actively protect against DDoS attacks and the OWASP Top Ten Security Risks.

Our engineering team also monitors for usage anomalies with automated alerts triggered in the case of abnormal trends / brute force attack. Potential issues are investigated immediately with further analysis of the relevant server and service logs.
Incident management type
Supplier-defined controls
Incident management approach
Our processes are inline with the NCSC 10 Steps to Cyber Security / Incident Management to ensure that all incidents are raised, managed, resolved and reviewed in a timely manner. The key steps are: Identify, Protect, Detect, Response & Recover.

Customer-originating incidents should be reported to the service desk. The incident will then be managed according to the above.

Whether customer- or internally-generated, the service desk will share an incident report with nominated contacts at affected customers, detailing the level and scope of the attack, the mitigation and recovery.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks
No

Pricing

Price
£3,500 to £32,400 an instance a year
Discount for educational organisations
No
Free trial available
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at nic.streatfeild@rol.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.